I am trying to find out best practices for SQL Server 2000 installs
for corporate servers. We currently have someone doing it 'in their
spare time!' (I kid you not). When installing SQL server 2000 out of
the box on a freshly formatted machine, I would like to get some
feedback on the following:
1) I believe the 'sa' account should be removed at earliest
opportunity, after install.
2) Should there be any processes running under the 'sa' account is the
machine was correctly configured to use a domain account principle? I
was under the impression that this was not the case?
Any links to information on best practices would be appreciated.
Regards,
MitchHi
See inline:
"Mitch W" <mwheat@.hatch.com.au> wrote in message
news:b0f6e915.0406231817.1b6918b4@.posting.google.c om...
> Hi
> I am trying to find out best practices for SQL Server 2000 installs
> for corporate servers. We currently have someone doing it 'in their
> spare time!' (I kid you not). When installing SQL server 2000 out of
> the box on a freshly formatted machine, I would like to get some
> feedback on the following:
> 1) I believe the 'sa' account should be removed at earliest
> opportunity, after install.
This can not be removed! You can assign a strong password and use window
authentication rather than mixed mode.
> 2) Should there be any processes running under the 'sa' account is the
> machine was correctly configured to use a domain account principle? I
> was under the impression that this was not the case?
If using only windows authentication then you can not log in as sa.
> Any links to information on best practices would be appreciated.
http://www.microsoft.com/sql/spotlight/security.asp
http://www.sqlsecurity.com/DesktopD...index=0&tabid=1
> Regards,
> Mitch
John
No comments:
Post a Comment